REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'A.S. Watson Group '
disclosed a bug submitted by
b'jfran_cbit'
b'Access to internal info via Graphql on https://tng-api.watsons.com.my'
05 Mar 2024
b'Mars'
disclosed a bug submitted by
b'deb0con'
b'CVE-2022-21371: Oracle WebLogic Server Local File Inclusion'
04 Mar 2024
b'SideFX'
disclosed a bug submitted by
b'0xchoudhary'
b"Session Doesn't expire after 2fa and also other session can change passsword "
02 Mar 2024
b'X (Formerly Twitter)'
disclosed a bug submitted by
b'bugra'
b'Able to see Twitter Circle tweets due to improper access control on the "FavoriteTweet" endpoint'
01 Mar 2024
b'IBM'
disclosed a bug submitted by
b'nightm4re'
b'XSS Refelected on jazz.net'
29 Feb 2024
b'IBM'
disclosed a bug submitted by
b'nepalihacker0x01'
b'Improper Authentication on Alertmanager instance'
29 Feb 2024
b'IBM'
disclosed a bug submitted by
b'bugoverflow'
b'Jenkins server access due to weak password'
29 Feb 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'vx01'
b'Command Injection using malicious hostname in expanded proxycommand'
28 Feb 2024
b'LinkedIn'
disclosed a bug submitted by
b'domg'
b'Stored XSS on LinkedIn App via iframe tag in Article'
28 Feb 2024
b'Daimler Truck'
disclosed a bug submitted by
b'7absec'
b'Server-based source code disclosures'
28 Feb 2024
b'Daimler Truck'
disclosed a bug submitted by
b'7absec'
b'Time-based SQL Injection'
28 Feb 2024
b'JetBlue'
disclosed a bug submitted by
b'asce21'
b'Sensitive information disclosure on grafana'
26 Feb 2024
b'Automattic'
disclosed a bug submitted by
b'renniepak'
b'DOM XSS on multiple Automattic domains through postMessages'
26 Feb 2024
b'PortSwigger Web Security'
disclosed a bug submitted by
b'priyanshusharma9789'
b'CSP Bypass and escalation of https://hackerone.com/reports/2279346'
23 Feb 2024
b'Cloudflare Public Bug Bounty'
disclosed a bug submitted by
b'ryotak'
b'Arbitrary file read from Cloudflare Pages build environment'
23 Feb 2024
b'X (Formerly Twitter)'
disclosed a bug submitted by
b'alp'
b'Ability to getting Twitter Blue verified badge without purchase it'
22 Feb 2024
b'TikTok'
disclosed a bug submitted by
b'a77w3'
b'HTML Injection on TikTok Ads'
20 Feb 2024
b'Mars'
disclosed a bug submitted by
b'xplo1t'
b'Unrestricted File Upload at '
19 Feb 2024
b'LinkedIn'
disclosed a bug submitted by
b'mv0x01'
b'Employee-only Area Bypass'
19 Feb 2024
b'inDrive'
disclosed a bug submitted by
b'bugsv2'
b'# Drivers can access the customers phone number, current location without getting their offer accepted!'
19 Feb 2024
1
...
3
4
5
6
7
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM